Parameters For Selecting A Triage Tool
By John J. Barbara
Triage tools vary greatly in their technical and operational performance capabilities.
Speeding The Digital Forensics Process: Bringing High Performance Computing Power into the Field
By Bob Carlson
A new generation of server-based solutions allows investigators to bring massive, data center computing capability into the field.
Triage A Computer
By John J. Barbara
Triaging a computer allows investigators to gather volatile data that would be lost by pulling the plug on a live system.
Before You Pull the Plug
By John J. Barbara
Collecting a computer into evidence requires careful consideration.
The Digital Forensic Sub-Disciplines: Part 2
By John J. Barbara
The confusion concerning the Digital and Multimedia Evidence Sub-Disciplines suggests the Discipline should be revised.
From The Editor: SWGDE Weighs in on Research Council Reports
By Patrice Galvin
Recently, the Scientific Working Group on Digital Evidence (SWGDE) posted a position paper on the National Research Council report that states the “report is a call to action for SWGDE to strengthen the digital evidence discipline.”
To Catch A Child Predator
By Douglas Page
New techniques are emerging to help forensic analysts build cases against Internet child pornographers.
The Digital Forensic Sub-Disciplines: Part 1
By John J. Barbara
Can we clearly differentiate whether an examination falls under Computer Forensics, Forensic Audio, Image Analysis, or Video Analysis?
Q&A with Larry Depew
By Ken Mohr
Insight on designing a functional and efficient digital forensics laboratory
Cloud Computing: Another Digital Forensic Challenge
By John J. Barbara
Cloud computing raises some unique law enforcement concerns regarding the location of potential digital evidence, its preservation, and its subsequent forensic analysis.
Examining Cellular Phones and Handheld Devices
By Don L. Lewis
From minor crimes to major cases, law enforcement is faced with the proper handling and analysis of these devices.
If only it were true, as the televised CSI seems to promise, that any audio recording could be made intelligible with a little bing from a computer. The realities of forensic audio may surprise you—amazing things are possible, but not all things.
To Search or Not to Search…the Search Continues
By John J. Barbara
The examination of a computer’s hard drive without an additional warrant may become problematic.
To Search or Not to Search
By John J. Barbara
Pertaining to the seizure of digital devices, there is some misunderstanding concerning what “executing the warrant within ten days” actually means.
The Case Against PI Licensing for Digital Forensic Examiners
By John J. Barbara
Over the past year or so, many private sector digital forensic examiners have expressed concern regarding whether or not his or her state requires them to obtain a PI license.
Anti-Digital Forensics, The Next Challenge: Part 2
By John J. Barbara
This issue, we take a look at the general categories of anti-digital forensics.
The Hash Algorithm Dilemma–Hash Value Collisions
By Don L. Lewis
Digital Evidence, like any other type of evidence, requires identification, collection, a chain of custody, examination/analysis, and finally authentication in court during presentation to the trier of fact.
Today’s Facility Design for Tomorrow’s Cyber Crime
By Lou Hartman, PE, Ken Mohr
If you are in search for what facility design criteria is specific to cyber science and other general design considerations for a forensic facility that includes a cyber crime lab, please continue.
Anti-Digital Forensics, The Next Challenge: Part 1
By John J. Barbara
In the last several years, the term Anti-Digital Forensics has entered the vernacular in the Digital Forensics discipline. Conceptually, ADF concerns an approach to manipulate, erase, or obfuscate digital data or to make its examination difficult, time consuming, or virtually impossible.
Ethical Practices in Digital Forensics: Part 2
By John J. Barbara
One common misconception of an examiner’s analytical responsibilities is that he or she is to only analyze submitted evidence to the extent of the investigative request. This is far from the truth.
Ethical Practices in Digital Forensics: Part 1
By John J. Barbara
There are many examiners in the Digital Forensic community who are not aware that professional codes of conduct and codes of ethical practices need to be an inherent part of every examination.
Some Essential Tasks Performed During Analysis
By John J. Barbara
There are three essential tasks that an examiner performs during the analysis of evidentiary digital media.
Reporting Examination Results
By John J. Barbara
One of the more important facets of digital forensics concerns how to document the findings in a formal report. At first glance, this would seem to be rather straightforward: report what you found.
Computer Forensics Standards And Controls
By John J. Barbara
Part 1 of 2. Read John J.
Don't Forget Your Memory
By Kris Harms, Kevin Mandia
Computer forensics is a field that is changing as fast as software can be written – and that’s fast. For each new application a person uses, such as Skype, Instant Messaging, Media players, and new operating systems, computer forensic examiners have to learn how that application reads, writes, stores, and deletes data.
